Cisco Duo Reviews

My main use cases for Cisco Duo involve implementing zero trust very early. We launched a project to do so, evaluated the market space, and chose Cisco Duo as a platform for its simplicity and ease of use, particularly for the end user.

The features I appreciate most about Cisco Duo are its simplicity for the end user and its integration into conditional access for Entra.

These features benefit my company by providing ease of use for our user base, thus driving fewer support tickets. It is easier to deploy, integrates into Intune and Jamf for end-user platforms, and fits very well with our bring-your-own-device policy for mobiles.

Cisco Duo can be improved by having easier integration into UbiKeys, which would be fantastic. While they are fairly easy to implement, an easier mechanism for rolling out UbiKeys with Cisco Duo would also be fantastic. Additionally, we could benefit from easier app updating procedures and notifications prior to updates to aid end users when they need to complete updates. We are going through that at the moment, but Cisco Duo is a fantastic product that is great for our end users. It is secure, flexible, and fits very well into the architecture we are trying to establish.

I have been using Cisco Duo for eight years.

Cisco Duo has not helped my company reduce its overall authentication-related costs, as it is a cost above what we already have. Because we are on Entra, we do have those licenses bundled in with Entra, but the benefits of Cisco Duo outweigh that.

Cisco Duo scales perfectly with the growing needs of my company. There are no problems as it scales up, scales down, and integrates into our IDP, so I have no complaints with the scalability.

Regarding its scalability and reliability, we have sometimes found issues, particularly with iOS updates, only to the point that we were not getting the notifications. However, Cisco Duo support has been fantastic with that. We have a great relationship with Cisco, so they take that feedback very readily.

The customer support and technical service from Cisco have been fantastic throughout. We speak to the product development team as part of that relationship, and they listen to our ideas readily, including the UbiKey ideas, for example.

I would rate the customer service and technical support as a nine out of ten, only because of the slight issues we had last year with the prompts that took a while to fix. It was one isolated incident.

Before choosing Cisco Duo, I considered native Entra, which was very much in its infancy at that time.

The deployment experience of Cisco Duo was straightforward. Another gentleman handled the workload that was fairly easy to roll out. It touched multiple teams because we had end-user support, operations, and integration to Entra, so it was a multi-phase approach and a multi-team effort, with change management throughout the organization. The key here is that the most important part, and the most difficult part to do, is our end-user base. At the end of the day, that is what Cisco Duo was picked for because the app is so easy to use for our end-user base on its multiple platforms. If you are going to look at the most challenging thing with a rollout, that is where you need to focus, rather than behind the scenes in the work for integrating it into your conditional access policies.

From my point of view, the biggest return on investment when using Cisco Duo is the low support costs. Obviously, you have to have MFA, it is non-negotiable, and the fact that the platform is so easy to use and so flexible provides that return.

Looking back at my initial investment in Cisco Duo versus the total value it has delivered over time, that choice has paid off for my company massively. We were able to implement zero trust extremely quickly because of the platform and its ongoing developments, including Cisco Duo Network Gateway, which enabled that transition to zero trust extremely quickly. This has been a fantastic journey for us and our strategic objective.

My experience with the pricing, setup costs, and licensing of Cisco Duo shows that it is a cost above our Entra costs, which we are always reviewing. The benefits outweigh the cost in terms of its simplicity, its ease of use for the end-user base, and its flexibility with other components we can use and integrate, such as OTP when needed on the odd occasion. Those benefits outweigh the extra cost that we have had to deploy.

I picked Cisco Duo at the end of the day again for its flexibility and the range of features that it has, particularly with ease of use for our end user. That is paramount. Providing that extra layer of security with that ease of use for our end user has been superb.

Cisco Duo was the first multifactor authentication platform that I decided on, approximately ten years ago.

I would rate Cisco Duo overall as an eight out of ten because it is a solid product that works incredibly well for our end-user base. It is secure and adaptable, but it does come at a cost above what competitors offer as part of packages we have to pay for already. We could do a better job in informing our users how to update the app ahead of time when that is necessary.

My advice to other companies considering Cisco Duo is to consider it very carefully for the points I have stated. It is a fantastic product that is easy to use and easy to roll out for our end-user base. However, that does come with a cost, which you are probably already paying for as part of well-known IDPs. We have found it a very valuable product to have, and that ROI has been shown specifically in the reduction in support costs.

There is another aspect I would love to share about Cisco Duo. We operate a good number of partnership relationships, and that is another part of the platform that we have found very easy to administer and track, especially for compliance measures.

Our main use cases for Cisco Duo are that we use it for all MFA with ISE for all of our service provider devices, all the servers, and related equipment.

Duo with ISE features benefit my company by making logins more secure and simpler. Everything is in one box, so we don't have multiple servers or multiple account on those servers for different device types. 

The feature of Cisco Duo that I prefer the most is centralized authentication for both TACACS and RADIUS. 

My ability to decrease time while using Cisco Duo varies. We don't change up people frequently, but one person would take me up to an hour out of my day to onboard or offboard. If we onboard 10 people I could spend my entire day giving access. 

Possible an integration with ISE where the DUIO proxy and DUO configuration can be done on ISE instead of separate portals.

I have been using Cisco Duo for five years now.

Regarding the stability and reliability of the platform, there have been issues. Cisco Duo has their issues, and they are effective about notifications saying they're having login issues or push notification issues; none of it has really affected me. They have backups, and I haven't noticed any issues with them.

Regarding its scalability, I haven't hit any limits yet, and I've got 1,000 users in there with no issues. I just go to my sales partner and request more licenses, and that's it. Since it's a cloud solution, I don't have to worry about it.

I never had a chance to experience anything with their customer service and technical support bsince I never had to reach out to them for anything.

Positive

We did not use or consider other solutions that do the same that Cisco Duo does. We went straight to Duo since we used it in conjunction with ISE.

The deployment of Cisco Duo is very simple. It's not hard at all. You just point your device to it, go into the portal and register, and you're done. There's nothing complex about it.

For me, the biggest return on investment when using Cisco Duo is my time. With multiple servers and different types of servers, if someone is onboarded or offboarded or they forget their password, I would have to change it in ten different places or more. Now I don't have to do that; I just do it in one place, and I'm done, so that helps.

My experience with the pricing, the setup costs, and the licensing of the solution is that it's cheap compared to running multiple other servers to do the same job. 

There aren't any new features or functionalities in Cisco Duo that my company has started using recently; we use it primarily for the authentication portion. There are other features we can use, yet we haven't turned those options on yet, so that's more a matter of time than anything.

We have many different vendors and types of devices that we require MFA for login.  That said, Duo helps bring all of those accounts into one system, in conjunction with ISE, you have one username, one password, and you access all the devices instead of having every device have its own credentials. It lowers the number of passwords you need to have.

Cisco Duo is on the right track for improvement. A lot of their devices already integrate with it now. They keep adding features for more devices that interact natively with it, instead of having to have a third-party server to reach out to Duo.

I would rate Cisco Duo overall about an eight out of ten; it's a strong product.

My main use cases for Cisco Duo are providing access control, ensuring that the people who need to access resources are the appropriate people accessing them. For 2FA, I ensure bad actors are not pretending to be someone's identity with stolen credentials. It serves as a secondary enforcement for that identity check.

The features I like the most with Cisco Duo are the push features, the SAML features, and the SSO capabilities that allow integration with anything in my environment for SSO and authentication.

When considering examples of how the features I have mentioned benefit my company, the biggest benefit I have seen has been with my clients. One client I had, we were able to turn the tide on a security attack that happened to them by using Cisco Duo. They were infiltrated and suffering a cybersecurity attack, what we would call a Golden Ticket attack. The Golden Ticket attack essentially means they have access to their identity and identity system and can generate new users with high permission levels. They did not have Cisco Duo before we were involved, which meant these accounts could just create a password, login, without any secondary check to confirm whether this is really the person who is supposed to be accessing these systems. We spent close to a week fighting with the bad actors. Getting Cisco Duo enabled allowed us to turn the tide in that fight. Once we were able to get Cisco Duo integrated with their Active Directory, these accounts they were trying to create were then required to authenticate with Cisco Duo, which we were the only people with access to. They did not have access to Cisco Duo, so they were not able to get into the system as deep as they were. We were able to start locking down the network piece by piece and secure our client.

If Cisco Duo were removed from my company, the biggest thing I would see is that if any credentials have been phished or leaked, without this secondary authentication method, I am opening myself up to the same kind of attack I just described. I am opening myself up to the ability for someone who has my credentials, maybe even sitting on them for a while. If I do not have a policy to make me change my password, I probably have the same password or an enumerated version of it for a while. It is very easy for someone to access my systems. Without a secondary method, 2FA is probably one of the most impactful ways, specifically with Cisco Duo, for me to be able to secure my enterprise and make sure people are not stealing my credentials and trying to access my systems maliciously.

The steps we have taken to become more resistant to phishing attacks and how Cisco Duo's broader security approach has contributed to that effort involve securing the accounts that we need to secure appropriately and being able to make it simple for our users to use. That has been the biggest win for us—allowing our users to log into their desktop. That is how we use it internally in our own company. Logging into your desktop and that one push that you authenticate takes care of everything for any other systems that we have to access. Cisco Duo integrates and carries my identity. For instance, if I am going from ConnectWise for our CRM or if I am going into Cisco's own tools, I will use Cisco Duo just once when I am logging into my Windows PC, and it allows me to access all of these other systems because it is already integrated. It is seamless and makes it that simple because we want our employees to work more easily and get more value for us. That is absolutely possible when they are able to just get in and do their job without having to fiddle with authentication.

Before implementing Cisco Duo, I was concerned about various types of phishing or credential-based attacks, and with the rise of AI, it makes it a bit more concerning. There are also data leaks that are happening constantly. You just hear about the incidents. For instance, there was a cruise line that had around six million credentials and identities leaked. Knowing those leaks are out there allows me to lock down my credentials and ensure that even if someone does steal them, only the right person can utilize them to access the system. Additionally, it works in tandem with the ability to stop phishing attacks using a Cisco firewall. Being able to integrate it into a full platform experience for security is crucial.

I would love to see improvements around Identity and Access Management with Cisco Duo, specifically how we can use that as a central source of truth for all of our IAM tools, including Active Directory. I would definitely like to see more integration from that for sure.

I really want to get more hands-on with IAM for more features within Cisco Duo. I would like to see Cisco Duo fully develop what it would look like as an IAM service. I would love to get involved in that.

I have been using Cisco Duo for about five years.

I would assess the stability and reliability of Cisco Duo as being very high. I rate it a ten out of ten on that front. I have not seen any issues with it. I have been using it for years, and I have not experienced any downtime. I have not heard from clients complaining about it; it is rock solid.

Cisco Duo scales very easily with the growing needs of my company because I can buy as few as just a handful of licenses to get started. For example, I can pilot with privileged users and start locking them down to prevent abuse by bad actors. If I want to move into less privileged but still trusted users such as HR, it provides a roadmap if I have concerns around cost. It makes controlling the rollout process much easier.

I would describe the customer service and technical support of Cisco Duo as being very high quality. I have never been disappointed in my experience with their support. On a scale of one to ten, I would rate their customer support service as a ten because of their quick response times, the knowledge they possess, and the ease with which they resolve any issues I have encountered.

Prior to adopting Cisco Duo, I was not using another solution to address similar needs.

My experience with deploying Cisco Duo is that it is a straightforward process. It has become almost second nature for us. We can plug it in and explicitly describe to our clients how long it is going to take and the type of VM we need to install, making it a seamless and painless process.

Cisco Duo has improved my operational efficiency and reduced costs in areas such as authentication, IT support, and security operations significantly. The simplicity of having SSO enabled means I have a one-time login that follows me throughout my session. I can determine how long that session lasts, but when I log into my computer, I can access my CRM or marketing tools or HR policies without issues. Many of these disparate SaaS tools have SAML and SSO capabilities integrated, allowing seamless access after authenticating just once. Cisco Duo is managing the authentication brokering between these different tools for us, simplifying the process and reducing the mental load on our employees.

My experience with the pricing, the setup cost, and the licensing of Cisco Duo is that it is really inexpensive in the first place, but the value that I get in return is hard to beat, especially when I consider breaches. Being able to prevent unauthorized access is invaluable. I do not know if we would have been able to stop the breach we encountered without something such as Cisco Duo to provide that secondary identity check.

I did not consider other solutions before choosing Cisco Duo as it was the option we went with. We heard about Cisco Duo, and we trust Cisco, so that is what we went with.

Cisco Duo fits into my broader security environment as part of a defense-in-depth strategy. What I appreciate about Cisco Duo is that it adds that extra layer of authentication, confirming who I am. Not only does it verify who I am, but also what I have, which would be that code or the push notification that I am approving. Cisco Duo provides another layer in the cake of securing my enterprise and serves as a natural plugin to facilitate access across whatever integrated applications I may need to access.

Cisco Duo has given me the ability to ensure that only specific people who need to access certain data are the people accessing it. They receive the push notification, and if they are not allowed to access that, they are not going to receive the push notification. It has helped us lock down access more granularly.

Cisco Duo has helped me evolve my IAM strategy from simple authentication to a more comprehensive identity security platform by ensuring that the person is who they really are. It makes sure that not only is it Sam from accounting accessing this tool, but they also have Sam from accounting's phone. It is not someone just pretending to be Sam or someone that Sam gave the credentials to. It ensures that only the right people are accessing the right resources at the right times.

When evaluating my identity strategy, I was looking for something that is simple and easy to plug in. Since we were already a Cisco partner and client, it was a natural choice and evolution for us to adopt Cisco Duo. In the experiences we have had with clients, such as the one who had the breach, it became a natural piece to ensure a simple, easy way to lock my network down and keep the bad actors out.

The key capabilities beyond MFA that led me to choose Cisco Duo as my primary identity security partner are its robust MFA functionalities. If I had to highlight something exciting that is new, I do appreciate the ability to integrate IAM as part of that. However, the key functionality remains MFA, particularly the ability to manage risky logins. It is about making sure not only does this person geographically live in the location where they are trying to access, but are they in the place they are supposed to be. For example, are they trying to access it from China, potentially compromising their Cisco Duo credentials? I would see that and receive a secondary layer of protection because Cisco Duo detects the unusual access attempt and prompts for further authentication from the administrator.

My advice to other companies considering Cisco Duo is that they should have had it in yesterday. It is essential to get all of the rich feature benefits out of it. If they are only using it as an MFA tool, they should look for ways to start integrating it into SSO to facilitate seamless authentication across SaaS or on-premises applications with that capability in Duo. Additionally, I recommend exploring features such as risky logins and ensuring they are accessing the full breadth of what they are paying for. I would rate this solution overall as a ten out of ten.

We are using Cisco Duo especially because we have a lot of servers, and we need multi-factor authentication to securely access them. This is the primary use case for Cisco Duo. We have also integrated it with another security product from Cisco, Cisco ICE. So we integrate Cisco Duo and ICE together.

The benefits we gain from Cisco Duo are mainly for secure server access, particularly for those who are organizing server access. There are many authentication options available, but for server authentication, Cisco Duo helps us to create a distinct separation for the server team, especially for those who have RDP connections into the server. Normal username and password setups are enhanced with Cisco Duo's multi-factor authentication, which is a vital part of securing our server infrastructure.

Cisco Duo helps us in our efforts against phishing attacks, especially because it’s part of the Cisco ecosystem with Cisco ICE. Currently, Cisco is offering Cisco Secure Access, which is a cloud solution. Even if it's going to the cloud, we still need Cisco Duo for multi-factor authentication, so I believe Cisco Duo must be present even with Secure Access or ICE.

Since implementing Cisco Duo, it has greatly improved our operational efficiency. Previously, identifying who accessed the servers was time-consuming, taking days or months across various locations. Cisco Duo simplifies this process by providing direct insight into login issues, allowing administrators to pinpoint problems rather than just dealing with password resets.

I like Cisco Duo particularly because it's integrated with the other Cisco ecosystems. Cisco ICE, or something similar, allows for additional authentication checks when someone logs into Cisco Duo, confirming whether the user is legitimate. While Microsoft IDP provides features for multi-factor authentication, it doesn't offer the same comprehensive checks that Cisco Duo does. Cisco Duo can identify the user's location and currently offers features that were not available before.

Cisco Duo scales perfectly with our organization's needs. We have a substantial number of licenses, and it's easy to track user activity via the dashboard. Due to our enterprise agreement with Cisco, we automatically receive additional licensing as our usage increases.

The impact of removing Cisco Duo would definitely be significant, as it provides essential multi-factor authentication to log into our servers. Without Cisco Duo, if someone has a username and password, they could log directly into the server without additional security checks. With Cisco Duo, we confirm not only the user's ID but also their location. For instance, if someone is trying to access from China while we are in Europe, we could recognize the anomaly. If Cisco Duo is removed, we lose this vital layer of protection, leaving us exposed if someone knows our username and password.

Addressing agentic IAM with the rise of AI agents is quite complex. Many people now utilize agentic AI, and while I believe Cisco Duo’s multi-factor authentication adds a layer of security, I acknowledge that there are sophisticated attacks that could potentially target it. The fact that Cisco Duo encrypts connections and requires user presence enhances its security, but attackers could still try if they're on the same network.

I don't see Cisco Duo playing a significant role in managing agentic AI identities at this moment. Currently, in my experience, agentic AI does not integrate well with Cisco Duo, and while I hope Cisco will find solutions for this in the future, I don't believe that capability exists yet.

I believe Cisco Duo should integrate with Cisco Cloud Control. Given the wide array of security products Cisco offers, it would be beneficial to consolidate them into one dashboard. Having Cisco Duo integrated into Cloud Control would allow us to access all security functions seamlessly.

I have been using Cisco Duo for the last five years.

In my experience, Cisco Duo has not caused any downtime or performance issues.

We have indeed expanded our usage. We started with around four hundred users and have now grown to almost two thousand. The process was remarkably smooth, supported by our unique licensing system with Cisco, where we automatically gain additional licensing as needed.

On a scale from one to ten for customer service and technical support, I would give Cisco Duo a perfect ten. I have had no issues requiring technical support, and the response has always been excellent.

Before implementing Cisco Duo, I did not utilize another product that directly meets similar needs. Although some might suggest alternatives like Okta or Microsoft, I find that those solutions often focus specifically on end devices, whereas Cisco Duo extends its functionality beyond that.

I find Cisco Duo to be an excellent product with a very straightforward deployment. It's easy to implement, taking little time compared to other security products. It's comparable to a module that can be set up within a day.

We have trialed Microsoft Entra ID alongside Cisco Duo, but as I mentioned earlier, it does not meet the same broad aspects as Cisco Duo does.

I began with Microsoft Entra ID and am still utilizing it, but ultimately selected Cisco Duo for its superior offerings. Cisco Duo provides flexibility by allowing us to combine it alongside Entra ID, particularly beneficial for my server and network teams. We didn't evaluate alternatives because everything we rely on is within the Cisco ecosystem.

Before implementing Cisco Duo, we were concerned about authentication hijacking, as we had an incident where someone managed to gain access to our server. They provided us with the username and password, suggesting they could access it at any time. After introducing Cisco Duo, we realized that while our existing firewall provided security, Cisco Duo significantly reduces the risk of authentication hijacking. Cisco Duo works even beyond on-premises solutions, enhancing security in cloud environments.

The key capabilities that led me to choose Cisco Duo extend beyond just multi-factor authentication. It serves as a module that communicates with ICE, enabling it to take actions when necessary. While Cisco's other security measures are robust, integrating Cisco Duo into our cloud systems is still a critical need.

I see Cisco Duo fitting into my broader security environment as an essential security layer rather than a control point. It functions mainly as a security layer to support Cisco’s extensive range of security products, which vary and might not fully integrate with all of them.

When evaluating my identity strategy, I wasn't looking for a standalone MFA tool; what I sought was a part of the broader Cisco security ecosystem. While I recognize Cisco Duo predominantly as a multi-factor authentication solution, it integrates with other security tools, making it valuable in accessing various services, though I haven't yet seen a connection between Cisco Duo and agentic AI.

I would tell other organizations that even if they have existing authentication systems, they should consider Cisco Duo. It works effectively across various environments and isn't limited to operating system-based access. I would rate Cisco Duo eight out of ten, and its comprehensive capabilities are a significant advantage.

We primarily use Cisco Duo as another layer of security to protect our logins for our desktop, our VPN, and our Office 365 instance.

My favorite parts of Cisco Duo are the fact that it can integrate with platforms very seamlessly; for our use cases, they have both a soft token and a hardware token, which is probably the biggest selling point for us.

These features of Cisco Duo help us a lot from the fact that our users are a mixed environment; we have both union staff and non-union staff, so we have to have special rules about how one operates versus how the other operates, and Cisco Duo gives us that flexibility to put more restrictions on one side and less on the other, giving one side another way of accessing it and the other a different way.

If Cisco Duo went away, we would probably be very scared because it has brought a lot of peace of mind to how our employees are logging into the systems, ensuring there's another big layer in between them and getting into their accounts that a bad actor wouldn't be able to get through.

We've spent a lot of effort in the financial space to try to protect both our employees and our member data and all of our financial services, and Cisco Duo contributes to that effort by being another layer of protection; we've put a lot of effort into training our employees and do a lot of phishing tests, something we do almost daily at this point.

We have been concerned about all forms of phishing or credential-based attacks before implementing Cisco Duo, from credential phishing to social engineering; Cisco Duo is another layer in that whole piece, putting up another red flag for our employees, so they can let us know if they get prompted that someone is trying to log into their account.

My ability to detect and respond to identity-based risks has changed since implementing Cisco Duo to be a more immediate response, allowing our employee getting the alert to immediately respond by saying 'No, this is not me,' so that we can act and take the necessary steps to stop it.

The biggest overall impact of Cisco Duo on our company has been the peace of mind it provides, helping us sleep a little more soundly at night knowing that we have that layer there, and operationally, it has fostered more trust when it comes to logging into systems.

Cisco Duo could definitely be improved, particularly regarding some of the reporting it does, as it currently lacks detail; for example, we had an issue where someone was getting prompted multiple times, but the console only detected it that one time.

Cisco Duo has improved the security side of things by adding that additional layer, although it probably slowed operations down a little since we have to enter a token every time we log in, but the peace of mind definitely outweighs the inconvenience.

I have been using Cisco Duo for two years.

Cisco Duo has been very stable, with very few disruptions in the couple of years we've been on it, and when issues pop up, they are usually short-lived.

Truthfully, we haven't looked much into expanding Cisco Duo, as the few times we've attempted it were limited by third-party providers that brought their own MFA solutions.

The customer service and support for Cisco Duo, when we've had to use it, is very good, although we haven't had to use it very often.

We weren't using another solution to address similar needs prior to adopting Cisco Duo, as it was our first foray into this area, and it's a good thing, so we're not looking at anything else.

The deployment of Cisco Duo was very straightforward and easy, as we did a slower rollout increasing our team's comfort in using it across Active Directory, our VPN, and Office 365.

The biggest return on investment when using Cisco Duo is the peace of mind of it all, as everyone from the top executive level down to entry-level employees appreciates the security it provides.

I don't really have anything off the top of my mind regarding pricing; I would say it hasn't been inconvenient when it comes to pricing, as it was good enough for us to sign up for it.

We weren't using another solution to address similar needs prior to adopting Cisco Duo, as it was our first foray into this area, and it's a good thing, so we're not looking at anything else.

I've been a proponent of Cisco for a long time, as I trust their products and know my team trusts their products, which is why I choose Cisco Security at the end of the day.

If I had to rate Cisco Duo, I would probably give it a 9 out of 10 because it's really good and close to perfect, but everything can be improved so I can't give it that coveted 10 out of 10. For other companies considering it, I would advise them to take a staged rollout approach for success. I would rate this review a 9 out of 10.

Our main use cases for Cisco Duo are single sign-on and MFA.

The main feature for single sign-on would be the ease of remote access VPN, which is real simple and straightforward.

Single sign-on benefits our company by providing ease of use to allow users to get into the system.

The feature I like the most about Cisco Duo is the single sign-on.

Cisco Duo is the added security layer in our overall identity and access management environment. It's the cornerstone of identity for us. If a user logs into AD and they need to multi-factor authenticate, Cisco Duo is the answer. For us, it's a foundational level cornerstone.

Cisco Duo has contributed to our efforts to become more resistant to phishing attacks by allowing us to adjust the settings to combat phishing attempts and attacks against the company, by allowing us to implement phishing-resistant multi-factor authentication.

Cisco Duo can be improved by integrating into TAC more.

We recently had an issue with an edge firewall. VPN was part of that, and part of our VPN is Cisco Duo. If an edge firewall use case goes down and support needs to be called in for the firewall, we're going to call Cisco TAC. For Cisco Duo, we actually have to contact a separate support to get the same level of engineering support.

We have been using Cisco Duo for roughly five years.

For us, there have been no downtime that we have really experienced. We have seen the notifications of service impact, but for us, our users have not experienced any issues.

For us, the scaling has not really been needed. Our implementation has been effectively the entire organization, and we have not really had to scale much past that for right now.

The customer service and support have been fine. The only thing I would say that may lead to a more negative experience would be allowing the engineers to help the customers whether it is a twenty-minute call or a four-hour call.

For us, there was no MFA before Cisco Duo. Now with Cisco Duo, we have MFA corporate-wide.

Before Cisco Duo, we were not using anything to address similar needs.

The overall deployment was straightforward and seamless. We set up the tenant, set up auth proxy on-premises, and once everything syncs, we made sure the application was installed if we were using Windows desktop for authentication. If we were going to do SAML, we made sure that portion was set up for our remote access. We really did not have any issues. We were very fortunate.

I think the improvement has been in security operations on the identity side. Cisco Duo has achieved this because of the ease of use for multi-factor authentication for the user. Whether using a product like AnyConnect and using the desktop authentication to send either a passcode or a push, that is what really helped it out. It streamlined the process. It makes it easy. It just works. Set up a few things, and it is done. That has been the biggest impact. For us, that is the biggest ROI for this product.

The biggest return on investment was the ease of use for the end users to have that secondary authentication when logging into the critical systems.

My experience with the pricing, the setup cost, and the licensing of Cisco Duo has been straightforward. The licensing has been straightforward for the whole process. The process was: What do you guys need? Where are you guys looking at? Is the base level enough? Do you want advantage? Are those the features that you want? Or do you want the actual premier plan? For us, it was advantage.

We were evaluating products or starting that conversation to evaluate products. For us, we had a situation where we had to move a little bit more quickly. Since we were already a Cisco shop, that was the first place we looked was Cisco.

We choose Cisco security because of the umbrella coverage over the entire infrastructure. As times have changed with security, you may have one product that is network observability and you have to go into one portal. Then you go into another portal for server logs, another portal for identity, and another portal for something else. Having something that consolidates all of these portals is a plus for us.

The biggest impact for our company if Cisco Duo were removed today would be a loss of MFA.

The biggest impact would be the loss of that multi-factor authentication and the ease of use of multi-factor authentication for the company.

It has changed our ability to detect and respond to identity-based risks because of the observability that Cisco Duo provides. We get to see all of those logs, all the authentication logs. If we see all of the extra users that are getting hit, then we can act accordingly. This information comes from the GUI on Cisco Duo. If we actually go to the proxy auth logs, then we even get further detailed information on those attempts.

Our biggest impact from Cisco Duo is probably the security side. Being able to implement that multi-factor authentication. User experience is going to be an ongoing journey with everybody. As we continue on, it becomes easier for MFA. But for companies that are slow to implement MFA, the culture can be slow to adopt.

Our primary objective was multi-factor authentication on the identity side. As soon as we sync AD, it allows us to immediately have that MFA for each user.

Cisco Duo is much broader than just an MFA product. What we use it for in our use case at the time we implemented it was primarily for MFA.

Cisco Duo is much more than an MFA product because of the applications you can integrate and single sign-on. If you have any other applications that you want to single sign on, you can set that up either as its own identity provider or through the applications in Cisco Duo portal.

I would rate Cisco Duo at least an eight out of ten. My advice would be if you want something straightforward and simple for an MFA solution, choose Cisco Duo as it has simple installation, is quick, and just works.

Our current main use cases for Cisco Duo at our company are for VPN and Microsoft RDP.

Cisco Duo plays a significant part in our VPN access because it implements with ICE and gives us an extra layer of security. To access our network, we use ICE incorporated with Cisco Duo and an NPS server, and that connection is how we access our network. The extra step provides an additional layer of security along with Active Directory.

We had ICE, and Cisco Duo implemented with that very well, so that played a part in what we chose. We run pretty much full Cisco security products.

Our company is small, so when we first started, we purchased more licenses than we probably needed. Cisco Duo scaled well based on our setup and the number of licenses we had.

I think there is a broader scope for Cisco Duo, but we haven't actually explored it. We just started implementing the RDP, the Microsoft RDP, where you basically have MFA for your server. I think there are many different things that they have to offer, but I haven't gotten to digging deeper into it.

I would say I appreciate the VPN access for the VPN portion because it's fairly easy to use and it gives our users direction on how to actually use it. If Cisco Duo were removed today, I think there would be a big learning curve for our end users, just having to incorporate a new system to learn. I think that would be the biggest thing for us.

We have been implementing many different things to become more resistant to phishing attacks, and Cisco Duo has contributed to that effort as an extra step of security that has really helped there.

I think social engineering is a big concern, but having that extra step for our end users to go through just makes it easier on me and our end users to prevent that.

Cisco Duo has given us an extra layer of security. I know that many companies see attempts to access their VPNs, and Cisco Duo will provide that extra layer of security and stop some attacks.

I would say Cisco Duo improved our authentication with that extra layer of security and the usability for our end users.

I think the biggest return on investment when using Cisco Duo is having the extra layer of security. Having our end users go through a second step has been great.

I'm not entirely certain about areas for improvement. When we met our rep last week, they showed us a whole bunch of different things that I didn't know we had access to.

I think there is a broader scope for Cisco Duo, but we haven't actually explored it.

I'm fairly certain we've had Cisco Duo since we started, so I can't say what the timeframe was.

We haven't experienced any downtime with Cisco Duo. It has been reliable for us.

Our company is small, so when we first started, we purchased more licenses than we probably needed. Cisco Duo scaled well based on our setup and the number of licenses we had.

I think the customer service of Cisco Duo has been very good. We have a rep, and we met with him last week. I feel they are very up to date and keep us informed on new products coming along.

I would rank Cisco Duo's customer support and technical service as a 10 because anytime we've had an issue, they've been quick to respond. Cisco TAC has been very good to us.

I don't think we considered other solutions other than Cisco Duo at our company. Our IT manager helped me pick this, so since we were already leaning towards Cisco, it just made sense to go with Cisco.

The deployment process of Cisco Duo was very good. We set up a server for it, and they helped us walk through the setup. We had a proxy for it, and we configured it that way. They held our hand through the whole process.

The setup was fairly good. We had someone from Cisco Duo help us set it up, which was very nice. They held our hand through the whole process.

I think the biggest return on investment when using Cisco Duo is having the extra layer of security. Having our end users go through a second step has been great.

The cost of Cisco Duo has been fairly good. The setup was fairly good as well. It was a pretty easy setup, and it's been smooth since we set it up.

No other alternate solutions were considered.

I would rank Cisco Duo as a 10 because we haven't had any issues with it. It's worked well for us. It's fairly easy to use, and our end users appreciate it.

I would recommend Cisco Duo personally, based on my experience and seeing the things it can do with the implementations that you can make with it. I would recommend it for sure. My overall rating for Cisco Duo is 10.

I implemented Cisco Duo for my customer approximately one year ago. For the use case, we are using Cisco Duo with VPN connection. When the customer VPNs to their environment, before they can access the VPN, they need to do the MFA of Cisco Duo.

I find the MFA, multifactor authentication, and Universal Prompt most useful in Cisco Duo. This is a SAML connection. The trusted endpoint and Windows Logon, MFA with Windows Logon, and RDP connection are valuable features. Cisco Duo can be integrated with many third-party vendors and third-party applications.

The main reason my customers started using Cisco Duo is because they need to have a multifactor authentication application to secure their application.

The biggest benefit of Cisco Duo for my customers is the license because they count licenses for the user. One user can use any application. If we buy a 100 or 200 user license, one user can use many applications integrated with Cisco Duo.

Passwordless is a good feature for customers to use Cisco Duo without prompting for the password. They can type the email address, and they can access their application continually and faster than before.

The return on investment my customers see with Cisco Duo includes having the inventory of their mobile and computer. They have Cisco Duo to do the inventory for them, and the MFA helps protect their application.

There are no major issues to improve in Cisco Duo because it improves continuously. Cisco Duo has many features separated by license tiers: Essential, Advantage, and Premium. They could consider moving some features from the next license tier to the Essential license tier, such as the health check of endpoint feature.

I have been working in my field for about six years.

Cisco Duo is stable, but occasionally there are emails about incidents that affect some services temporarily. The downtime and issues typically occur during maintenance windows at night. When incidents occur, they are not critical issues and do not affect users' ability to use the system.

Cisco Duo scales easily with the growing needs of the organization. It integrates with their Active Directory, so when they have a new employee, Cisco Duo will automatically synchronize the user. The customer simply needs to buy more licenses to expand to 1,000 or 2,000 users.

The support for Cisco Duo is excellent. I have opened one case, and they provide good support. I would rate their support 10 out of 10.

Positive

The price for Cisco Duo is reasonable. Their website lists $3 per month per user for the Essential license. For company or enterprise usage, the cost decreases below the website price.

They tested Cisco Duo with SafeNet for comparison.

I would rate Cisco Duo 10 out of 10. Using Cisco Duo's strong security authentication system is straightforward to configure and use.

Advanced Identity is in the next license tier. I am testing it in my company environment but not using it with any customers.

I am currently testing Cisco Identity Intelligence capability to detect and respond to identity-based risks.

Deploying Cisco Duo is not challenging. For the administrator, the deployment takes approximately one to two days. For customer employees to install the Duo desktop application on their computers, the time varies depending on the number of users. For 500 users, it takes approximately one month.

I recommend Cisco Duo because the MFA can integrate with many applications. When customers purchase it, they can integrate it with many of their applications, making it valuable.

Our main use case for Cisco Duo is the VPN, but we are actually moving into using it for the clients and all the endpoints, so they can log in with their device. Primarily, we are using it for the VPN right now.

Cisco Duo offers broader capabilities beyond just MFA. While we utilize it primarily for multi-factor authentication, there are many more features available. Being in security allows me to see how it helps monitor login activity and identify issues more effectively.

The feature that I like the most about Cisco Duo is the multi-factor authentication, which we are currently configuring with all the phones, not the Cisco phones, but the Android cellphones.

The multi-factor authentication feature is valuable because many people are actually signing in without knowing who is signing in, or they are not worrying about the security side of the device. They need to be well aware of logging into their device as a second authentication, and it is another authorization for them to make sure that they are logging in as themselves.

The biggest impact if Cisco Duo were gone from our company would be the security side of the whole company, as Cisco Duo provides essential security for all those people to log in. This would significantly impact how we secure our devices with their credentials.

My ability to detect and respond to identity-based risks, such as compromised credentials or suspicious login activity, has changed significantly since implementing Cisco Duo. We can see everything, including people logging in and utilize geolocation to block specific locations, which helps us track unauthorized attempts to log in.

Cisco Duo has definitely helped reduce costs and improve efficiency at our company, especially in security operations. I see a significant impact in traffic monitoring as we previously faced ransomware attacks. Now with Cisco Duo, we can block unauthorized access, making it a really good product for us.

The biggest return on investment from using Cisco Duo is primarily for security. The investment enhances our overall security posture across the company, especially since we handle sensitive information on the Indian reservation. Cisco Duo represents a critical investment for our security needs.

I think Cisco Duo could improve the dashboard to make logging in and credential management more visible. I have noticed that when you are offline, you can log in straight without using Cisco Duo, while online it requires Duo, which some users may exploit, allowing for logins without an internet connection.

I have been working in my area of expertise overall for about twelve years, with ten years on the network side and two years in cybersecurity.

The stability and reliability of Cisco Duo as a product are very good. I really like it and consider it among my favorites. I actively advocate for its use across our company for all end-users on their devices, not just for VPN access.

Cisco Duo's scaling abilities feel adequate. When we needed to expand the number of users, it was not complicated or hard for us at all.

I have not had much experience with Cisco Duo's customer service and technical support, though I did encounter challenges when I lost my phone. I managed to resolve my issues by following steps on Cisco's site, but I think I would be fine reaching out if needed.

Cisco Duo is indeed the first solution of its kind at our company.

The deployment experience of Cisco Duo is straightforward. It is pretty easy, especially when considering the end-users.

The deployment of Cisco Duo is indeed straightforward. The only complication arises when a user loses their phone, which requires extra effort to recover configurations. However, I recognize there are backup features that could help, but I have not explored those yet.

The biggest return on investment from using Cisco Duo is primarily for security. The investment enhances our overall security posture across the company, especially since we handle sensitive information on the Indian reservation. Cisco Duo represents a critical investment for our security needs.

My experience with Cisco Duo's pricing, setup cost, and licensing is limited as I am not involved in that side. I believe we have around three thousand users and think it is affordable, especially if it is a good product.

I choose Cisco Security because it offers a variety of features that I find beneficial. We use many Cisco products for security, such as ICE, Secure Endpoint, and firewalls, which help us monitor and secure against outsiders and unsecure impacts from applications.

We have been using Cisco Duo for about three years now, but it is longer than that before we kind of implement everything and make it work for everybody. It is still a work in progress for us right now.

Looking back, the biggest impact Cisco Duo has had on our company is enhancing our security posture. While there were initial concerns about the additional login steps, the importance of Cisco Duo for security is now more evident, particularly as we utilize it mainly for VPN access right now, while gradually moving towards supporting any end-user devices within our community.

When we first evaluated Cisco Duo, we were primarily looking for a multi-factor authentication solution, but we are also exploring other features that Cisco Duo can offer within the company. I think it is a good product, though we are not using it to its full value yet.

Regarding our company's adoption of AI agents, we are not really implementing much on the AI side yet. I know we are working on ensuring that the AI features are secure, but I do not think we have touched much on Cisco Duo within the AI context, which is something we can look into.

For phishing attacks, we have our email filter, which is not directly related to Cisco Duo, but that is the route we have right now. With Duo, it is just for them to log in, while we focus on more of the email filter for phishing attacks.

I have been mainly concerned about email phishing or credential-based attacks, as many people are not really aware or computer literate enough to know which emails will affect them or which emails are useful. They tend to click whatever they want, which then leads to issues. With Cisco Duo, the impact is knowing that it is them logging in instead of somebody else.

Overall, I think Cisco Duo is a good product, and I hope that everyone looks into improving security measures, whether for companies or personal use. I would rate this review ten out of ten.

My main use case for Cisco Duo is MFA.

You can do online and offline authentication. It benefits my organization by adding an additional layer of security and keeping us more secure, whether the person is corporately connected or out in the field.

The feature that my organization started using more recently in Cisco Duo is offline authentication. It has given us the evolution into offline abilities for when they are out in the field or traveling, and they are not connecting to a known network. 

Cisco Duo can be improved by exploring a way to make it a more seamless integration and by deploying an in-house server. 

There has to be a way to make the whole process of push notifications easier, so that when I have my phone with me, I do not have to do anything. It pushes it to my phone and says, 'Yep, that's Roger,' and sends a reply back. Getting in should be totally seamless.

I have been using Cisco Duo for two years.

Cisco Duo has been very stable. When there is a bigger problem, we get notifications from Cisco Duo saying, 'Hey, we have a problem,' and that has helped us.

A couple of times, we have had some downtime, but it has not been anything that has interfered with daily productivity. We have had a random crash here or there. With the restart of the system, it goes away. It is not something for which we have been able to identify the reason.

We have not grown in size with Cisco Duo. We have added additional features over time, and it has grown with us rather well. We started out with just the basics, getting a token, and then we changed to push, and now, we have added the offline mode. We have integrated Cisco Duo into other websites, so now it pushes notifications from our websites into our mobile devices, so we get push notifications from it.

Cisco support is not good to start with. Everything stays the same; the Duo support has been timely in responding to emails, but other support sections have failed miserably because of the lack of response time, the lack of the ability to answer questions, and the lack of tracking down an expert who can help. I can continue for hours over what they have done wrong on that.

Neutral

The setup was not the most complicated thing that I have had to deal with. It has been a little bit easier to set up than some of the other things.

Getting the files to set up virtual servers for it was a little more time-consuming. That was probably the hardest part of the whole thing.

I have not seen ROI with Cisco Duo; probably the opposite, because it impedes productivity time to be able to get into the system. You have to authenticate and do your regular login and your Active Directory logins. When you add that up, five minutes a day, five times a day, five days a week, you have lost two or three hours of productivity just logging in.

The cost was reasonable. Licensing was pretty straightforward for a change.

We looked at other solutions, but because we already had Cisco solutions in-house, we talked to Cisco Duo people two years ago at Cisco Live, and then we made the decision to move to Cisco Duo after that. There's always room for improvement in everything, but the integration that they have works very well with everything that we have.

Our experience with Duo's strong security authentication system when logging in has been moderate. It is a people problem because you have to get people educated and up to speed on how to do things and how to set up their tokens and get everything situated. Once it is all said and done, it is not complicated, but you have got to get people educated on how to make this stuff work.

My advice to other organizations considering Cisco Duo is to make sure of the products you want to support and how they integrate the MFA functions before you consider it. Because if your products do not support it, it may not do you as much good as you want. If they do support it, it is a great way to add additional layers of security, not only to your computers but website logins and other avenues of hardware protection. 

I would rate Cisco Duo an eight out of ten.